Merge Samba3 and Samba4 together

[amitay/samba.git] / docs-xml / smbdotconf / ldap / ldapssl.xml

<samba:parameter name="ldap ssl"
                 context="G"
                                 type="enum"
                 advanced="1" developer="1"
                 xmlns:samba="http://www.samba.org/samba/DTD/samba-doc">
 <description>
        <para>This option is used to define whether or not Samba should
        use SSL when connecting to the ldap server
        This is <emphasis>NOT</emphasis> related to
        Samba's previous SSL support which was enabled by specifying the 
         <command moreinfo="none">--with-ssl</command> option to the <filename moreinfo="none">configure</filename> 
        script.</para>
                
<para>The <smbconfoption name="ldap ssl"/> can be set to one of three values:</para>    
        <itemizedlist>
                <listitem>
                        <para><parameter moreinfo="none">Off</parameter> = Never 
                        use SSL when querying the directory.</para>
                </listitem>

                <listitem>
                        <para><parameter moreinfo="none">Start_tls</parameter> = Use 
                        the LDAPv3 StartTLS extended operation (RFC2830) for 
                        communicating with the directory server.</para>
                </listitem>
            
                <listitem>
                        <para><parameter moreinfo="none">On</parameter>  = Use SSL 
                        on the ldaps port when contacting the <parameter 
                        moreinfo="none">ldap server</parameter>. Only available when the 
                        backwards-compatiblity <command 
                        moreinfo="none">--with-ldapsam</command> option is specified
                to configure. See <smbconfoption name="passdb backend"/></para>.
                </listitem>
        </itemizedlist>         
</description>
<value type="default">start_tls</value>
</samba:parameter>